CWE-943: CWE-943
Yearly Trend
Top Affected Vendors
All CWE-943 CVEs (9)
A critical vulnerability in MicroSCADA Pro/X SYS600 allows authenticated attackers to inject code into persistent data through query validation flaws....
Aug 27, 2024WhoDB versions before 0.45.0 are vulnerable to parameter injection in database connection strings, allowing attackers to read local files on the host ...
Feb 6, 2025IBM Db2 databases running vulnerable versions can crash when processing specially crafted XML queries, causing denial of service. This affects Db2 11....
Jan 30, 2026IBM Db2 databases are vulnerable to denial of service attacks when users execute queries containing the JSON_Object scalar function, which can trigger...
Jan 30, 2026SAP NetWeaver Enterprise Portal has a JNDI injection vulnerability that allows unauthenticated attackers to manipulate JNDI lookups, potentially acces...
Nov 11, 2025This vulnerability in IBM Db2 allows a local user to cause a denial of service by exploiting improper neutralization of special elements in data query...
Jan 30, 2026This vulnerability in IBM Db2 allows a local user to cause a denial of service by exploiting improper neutralization of special elements in data query...
Nov 7, 2025IBM Db2 databases running versions 11.1 or 11.5 on Linux, UNIX, or Windows are vulnerable to a denial of service attack. An authenticated user can cra...
Aug 14, 2024NVIDIA Delegated Licensing Service contains a SQL injection vulnerability that allows authenticated users to execute unauthorized SQL commands. This a...
Sep 30, 2025About CWE-943 (CWE-943)
Our database tracks 9 CVEs classified as CWE-943, with 1 rated critical and 1 rated high severity. The average CVSS score for CWE-943 vulnerabilities is 6.7.
External reference: View CWE-943 on MITRE CWE →
Monitor CWE-943 Vulnerabilities
Get alerted when new CWE-943 CVEs affect your infrastructure.
Start Monitoring Free